Cisco has unveiled a host of new capabilities and services that give security professionals extensive intelligence and analysis on potential compromises and solutions to protect against, respond to and recover from attacks.
Dubbed the AMP Threat Grid, the new software integrates innovation acquired through last year’s acquisition of ThreatGRID to provide the latest malware threat intelligence and dynamic malware analysis capabilities, both on-premise and in the cloud.
According to Sabrina Dar, Cisco GM, East Africa, “Every day, organizations are faced with advanced threats that infiltrate and persist in company environments for months before they are discovered. We believe that the most effective way to address these real-world challenges is continuous threat protection against these attacks.”
Cisco is introducing Incident Response Services that equip Kenyan organizations with teams of information security experts that leverage threat intelligence and best practices for readiness and response from network to endpoint to cloud.
AMP Threat Grid provides dynamic malware analytics and threat intelligence and empower security teams with breach detection against advanced malware, allowing them to quickly scope and recover from a breach by providing context-rich, actionable threat intelligence. Unique to Cisco AMP, the solution continuously records and analyzes file activity at and after initial inspection.
There is a widening gap between the availability of expert security practitioners and the industry’s needs, as companies lack both funding and manpower to adequately protect assets and infrastructure. Chief Information Security Officers are increasingly looking to external experts for security guidance.
Leveraging threat intelligence from the Cisco Talos Security Intelligence and Research Group, AMP and the expertise of the Cisco Security Solutions (CSS) team, the Incident Response Services group works with organizations to identify the source of infection, where it entered the environment, and what data was compromised. The two will support businesses in Cyber Attack Response and Cybersecurity Readiness.
Cisco says further enhancements like advanced correlation of indicators of compromise, vulnerability mapping and expanded retrospective security further differentiate Cisco AMP and strengthen security teams’ responses before, during and after an attack. Cisco says it aims to significantly minimize the impact of a breach via proven readiness and response services.